Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
File: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft (raw, json)
Hash identifier: KuR/fHTNfKwnXChJpEu6Ay6i7bw+S1FMmqZnoTFgC2s=
Subject key identifier: F2:CF:DC:1D:9A:20:69:CC:5A:D8:91:F2:95:39:E4:E0:AA:67:79:20
Authority key identifier: D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
Certificate issuer: /CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Certificate serial: 019D27DFBEF3A2FB41E856CB85ABEEE6A849
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
Manifest number: 0F79
Signing time: Thu 26 Mar 2026 02:01:07 +0000
Manifest this update: Thu 26 Mar 2026 02:01:07 +0000
Manifest next update: Fri 27 Mar 2026 02:01:07 +0000
Files and hashes: 1: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl (hash: ZdLvhcoTXTtcjsHJvTFzsPw++uAldOHVD96G2AJELe0=)
2: AvvuwRM1rXoB8yxstk4ZmsXgR1Q.roa (hash: G1ri1MeorzSK/rz57ShZ1na3AYjwABPoQHfjiBcWJn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:be:f3:a2:fb:41:e8:56:cb:85:ab:ee:e6:a8:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Validity
Not Before: Mar 26 02:01:07 2026 GMT
Not After : Mar 27 02:01:07 2026 GMT
Subject: CN=f2cfdc1d9a2069cc5ad891f29539e4e0aa677920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e6:c7:f8:3c:92:34:9d:bc:89:a9:6e:3a:41:
eb:d2:bf:3d:5b:2a:b6:5f:54:97:1d:9d:c7:ae:cb:
ad:51:da:24:e9:11:8d:5d:a6:f4:31:f9:ef:94:be:
40:85:9b:7d:a1:af:38:e0:d9:21:21:ce:bb:70:a4:
77:44:1e:d4:c1:7b:98:cd:cd:c5:9b:51:d1:4e:5d:
4b:0a:90:17:c6:e7:23:55:1f:c3:3f:0e:e3:80:72:
4c:58:88:da:13:a9:74:9f:e1:8f:b0:b6:ac:8c:88:
f4:0e:f0:be:86:d6:dd:d6:1d:05:dd:89:b4:fd:6d:
e6:fe:14:39:49:7b:49:1f:b3:5b:4f:4a:2b:cc:48:
1a:34:43:c2:8b:60:37:2e:b1:6a:1e:c5:5c:83:db:
ec:dc:f2:a4:04:db:da:e9:0b:42:0c:3a:8b:65:5b:
55:72:34:94:28:76:8f:13:21:df:f2:28:4e:fb:97:
89:1b:89:05:15:ee:30:9b:a4:7b:28:8c:41:d6:38:
bf:06:ea:a3:a3:00:25:7a:63:93:36:e5:f6:ba:c1:
28:58:49:f1:eb:cf:ef:8c:0e:98:c2:f2:88:3f:21:
a1:be:24:94:dd:e4:d3:4a:a9:9f:bd:97:c9:97:61:
59:5d:d5:7c:00:af:84:91:0d:66:81:31:62:75:7a:
89:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:CF:DC:1D:9A:20:69:CC:5A:D8:91:F2:95:39:E4:E0:AA:67:79:20
X509v3 Authority Key Identifier:
keyid:D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:9d:5c:4a:b0:2a:89:a0:86:3a:a1:dc:85:5a:39:bd:d5:73:
ad:dc:15:9e:aa:9a:4a:dd:25:6d:7a:0d:05:50:a9:ed:07:47:
86:29:c4:69:cf:4c:04:24:77:fc:ee:4f:d6:33:65:e3:59:9f:
dd:85:df:22:a5:e8:21:a3:27:09:2c:fd:f9:b9:03:1f:30:6a:
b5:02:2b:2e:66:0d:d7:b8:f5:aa:85:5a:bf:14:d0:9a:61:d2:
c9:bb:74:62:09:f5:65:93:d4:3e:87:02:c3:26:49:ab:84:b2:
af:5f:13:66:20:c1:3d:70:9f:e0:fb:51:85:03:e2:2e:d3:c4:
74:7c:68:cc:45:8b:a9:74:02:b5:fb:fe:3a:8a:98:05:ea:48:
6e:1f:c7:50:6a:d7:03:42:ea:6b:4d:cf:31:ce:9b:04:17:78:
bc:a8:ec:ae:bf:e0:73:4a:3c:25:12:1c:cc:96:b3:25:d6:a5:
89:a6:99:c6:d1:75:df:44:87:40:7c:d0:c2:5c:34:1c:40:bf:
19:38:6d:3e:a2:99:4a:09:db:77:ef:7a:90:1b:e4:9f:82:fc:
11:ef:fa:1d:48:db:81:53:2c:2f:a2:02:a4:09:0c:74:89:76:
93:6b:2b:30:e2:ba:16:b2:4f:be:48:e4:09:36:bf:3e:cc:74:
0c:13:23:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:14:04 2026 by rpki-client